Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
nix-daemon: Bump the default number of build users
While it's annoying to pollute the user database with a lot of nixbld* users, 10 users is really too low for many modern systems.
- Loading branch information
79d547b
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@edolstra If we turned on sandboxes (with user namespaces) by default, we wouldn't have to pollute the user database, right? 😄 😄
79d547b
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
No, because we still need a different uid per build. (PID namespaces give some isolation between builds, but probably not enough to rely on. Also, we do
kill(-uid)
to kill any lingering processes at the end of a build.)79d547b
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Boo!